Change Connectivity provider on NSA 2600
Edika
Newbie ✭
The company I work for has decided to change the connectivity provider, so they will change all the Public IPs on the network. The definitive change will take place in a month, but the new provider will be active from October 1st. This way I will have a month in which the new and old provider will be active at the same time, and I will be able to organize the transition without downtime.
I have configured the new provider on the X5 interface. The current provider is on the X1 interface.
I duplicated all objects that refer to public addresses, assigning them the new IP addresses. And I also duplicated the NAT rules and access rules that referenced it.
The only thing I couldn't do is change the IP address of the 'Default Gateway' object which is connected to the X1 interface. I have created a custom object for the new gateway, but many routing rules refer to the 'Default Gateway' object. If I could change the IP I would avoid having to reconfigure all the routing rules that refer to it (which are many). Can anyone tell me if it is possible to modify this object created by the Firewall?
Also I would like to know if the procedure I followed for the migration to the new provider is correct, or if there is a better method to do this.
Thanks
Answers
To answer your question, you cannot modify the 'Default Gateway' object. It only changes when you change the default gateway of a WAN interface, or if a failover / load-balancing event occurs.
You should be looking into using failover / load-balancing or policy-based routing options. Here is a couple KBs that have more information that could be helpful.
While Sonicwall hasn't update all of their old docs, here is one that will help you with understanding the underlying technology. https://help.sonicwall.com/help/sw/eng/9410/26/2/3/content/Network_WAN_Failover.032.2.htm